14K
Downloads
64
Episodes
Welcome to ”The Security Podcast of Silicon Valley,” a https://YSecurity.io production that now features a compelling blend of our traditional cybersecurity insights and the innovative new sub-series, ”The Founder’s Guide to Compliance.” Hosted by Jon McLachlan and Sasha Sinkevich, this podcast dives deeper into the human element of cybersecurity, bridging the gap between technical challenges and the human stories behind them. ”The Security Podcast of Silicon Valley” has always been your gateway to the heart of innovation and resilience in the cybersecurity world. Our discussions unveil the trailblazers in security—entrepreneurs, engineers, and leaders who navigate not just the technical landscapes but also the human challenges that define today’s security industry. We create a shame-free zone for open, candid conversations about the real issues, triumphs, and the sometimes daunting journey through the world of cybersecurity. With the addition of ”The Founder’s Guide to Compliance,” we expand our horizon to focus on the critical aspect of compliance in the startup ecosystem. This new sub-series aims to demystify compliance standards like SOC, NIST, HITRUST, and others, making them accessible and actionable for founders, startups, and anyone vested in the intersection of technology, security, and regulation. Jon and Sasha bring their expertise and personal experiences to the forefront, offering insights into overcoming the hurdles of compliance while fostering innovation and resilience. Each episode, approximately 45 minutes long, is a journey into the minds and stories of those who dare to think differently and act boldly. From the dilemmas of real entrepreneurs to the strategies of seasoned operators and engineers, our podcast brings to light the cutting-edge technologies and techniques that offer tangible solutions to pressing security concerns. ”The Security Podcast of Silicon Valley” with ”The Founder’s Guide to Compliance” is more than a podcast; it’s an essential resource for professionals in the field and anyone intrigued by the critical role of humanity in shaping the future of security. Whether you’re a founder navigating the complex landscape of compliance or a seasoned professional looking for insights into the latest in cybersecurity, our podcast promises a wealth of knowledge, stories, and inspiration that pave the way to a safer tomorrow. Join us on this expanded journey as we continue to explore the intersection of humanity and cybersecurity, offering listeners a comprehensive view of how to thrive amidst the challenges of the modern cybersecurity landscape. Tune in, discover, learn, and be inspired. Visit us at https://YSecurity.io to start listening today. We’d love to hear from you, too. Drop us a note at contact@ysecurity.io
Episodes
Thursday Jun 17, 2021
Thursday Jun 17, 2021
An interview with Wesley Belleman, Cyber Warfare Operator at the California Air National Guard and System Engineer at Palo Alto Networks, and his journey through Security Operations in the United Space Space Force.
In this episode, we dive into what a SOC is, how new technology changes our ability to respond to threats, and what the open problems are still open. We explore the cultural differences between civilian and military security operations and discuss various open-source projects such as Security Onion or MITRE Att&ck that can be used to build your own SOC.
So what will the future of SOC's look like? Wes echo's Anton Chuvakin predictions that SOC's will be entirely automated, likely within our lifetimes, but not soon.
Thursday Jun 03, 2021
Thursday Jun 03, 2021
An interview with Daniel Feldman, Cloud Security Architect at HPE (formerly Scytale.io), as we discuss his journey through service authentication with the open standard SPIFFE and the implementation SPIRE.
In this episode, Daniel tells the story of how he came across this problem of authentication at Veritas Technologies, why he joined a small startup Scytale.io to continue focusing on his security journey, and touch on what it's like at Hewlett Packard Enterprise. We end on a forward-looking note on what the future of cloud security might look like, with many challenging and open cloud security problems out there.
Daniel is happy to meet others with similar interests and experiences, so in that spirit, he is open to connecting and sharing stories and ideas. He can be reached on LinkedIn or Twitter as d_feldman.
Monday May 17, 2021
Monday May 17, 2021
An interview with Andrew Gontarczyk, Chief Information Security Officer at Pure Storage, on the challenges of building a security team.
When is the right time for a company to build a security team? What types of Security Teams are there (Product Security, Infrastructure Security, DevSecOps, Red Team, Blue Team, Purple Teams), and what do they do? As a security leader, how do you influence the rest of a company towards a more secure posture? What are your favorite interview questions, and why? What role does diversity play in your team building? What's your leadership style? Even with a security team in place, what still keeps you up at night?
Thursday May 06, 2021
Thursday May 06, 2021
Join me for an interview with Anand Ganesh, Founding Software Architect at Hammerspace, to discuss how storageless data solves traditional B2B storage security problems.
What is storageless data? How does Hammerspace encrypt data at rest? How do disaster recovery, backup, and snapshot data protection mechanisms work in Hammerspace? Why does data-as-a-service eliminate the need for fail-overs (passive-to-active transitions)? How do permissions work? How does intelligent data classification work in Hammerspace? How does Hammerspace help a customer recover from a ransomware attack? Do we have to trust our storage vendors such as AWS, Google, Azure, or even on-prem data centers? How do you securely delete data in a globally distributed system, like Hammerspace?